Back to skill
Skillv1.0.0
VirusTotal security
Agent Browser Conflict · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:22 AM
- Hash
- c9dfba5c028ee5536b14a481cd377f8e80267ef824323caa31bed5a8c418094b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent-browser-conflict Version: 1.0.0 The skill bundle provides a comprehensive interface for the 'agent-browser' CLI, a tool for headless browser automation. While the functionality is aligned with its stated purpose, it includes several high-risk capabilities such as arbitrary JavaScript execution ('eval'), session state and cookie management ('state save', 'cookies'), and network request interception ('network route'). These features, documented in SKILL.md, provide a broad attack surface that could be exploited via indirect prompt injection if the agent navigates to malicious websites. Additionally, the _meta.json contains an unusual slug ('agent-browser-conflict') and a future-dated timestamp (2026).
- External report
- View on VirusTotal